How to kill AutoIT.i Virus

ဒီ virus က ေတာ္ေတာ္သတ္ရခက္ပါတယ္။ သူကို သတ္လိုက္တာနဲ႔ ကြန္ျပဴတာကို restart လုပ္လုိက္ပါတယ္။
ဒီ ဗို္င္းရပ္ရွိေနေၾကာင္းကို ဘယ္လိုသိႏိုင္ပါသလဲ?
၁) Folder Option ကိုမျမင္ရပါဘူး။
၂) Pendrive / thumbdrive / USB device ေတြဖြင့္လိုက္ရင္ My Document ဘဲတက္လာျခင္း
၃) Command Prompt ဖြင့္ လိုက္ရင္ သူ႕အလိုလိုျပန္ပိတ္သြားျခင္း
၄) Registy Editor ေခၚလို႔မရျခင္း
၅) Task Manager ေခၚလို႔မရျခင္း ....

ဘယ္လုိသတ္မလဲ။
၁) ဒီဖိုင္ကို download လုပ္ပါ။ c:\ ေအာက္မွာသိမ္းထားပါ။ Right-click here and choose save target as to download
၂) ကြန္ျပဴတာကို restart လုပ္ပါ။
၃) F8 key ကိုႏွိပ္ၿပီး safemode with command prompt ကိုေရြးပါ။
၄) command prompt မွ reg import c:\regsitry.reg ဆိုၿပီးရိုက္လိုက္ပါ။
၅) regedit လုိ႕ရိုက္ၿပီး Regsitry Editor ကိုေခၚပါ။
၆) HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run ကိုသြားပါ။
၇) SYS1, SYS2, SYS3 ႏွင့္ SYS4 ဆိုတဲ့တန္ဖိုးေတြကို delete လုပ္လိုက္ပါ။ Registry Editor ကိုပိတ္ပါ။
၈) command prompt မွာ
del %windir%\system32\system.exe
del %windir%\system32\bad1.exe
del %windir%\system32\bad2.exe
del %windir%\system32\bad3.exe
ဆိုတာေတြရိုက္ပါ။
shutdown -r -t 0 ဆိုၿပီး ကြန္ျပဴတာကို restart လုပ္ပါ။ USB drive ေတြတပ္ထားရင္ျဖဳတ္ထားပါ။
၉) ဗိုင္းရပ္အလုပ္မလုပ္ေတာ့ပါဘူး။
Antivirus သြင္းပါ။ သြင္းၿပီးရင္ USB ျပန္တပ္ႏိုင္ပါတယ္။
၁၀) Antivirus နဲ႔ USB drive နဲ႔ Hard Disk ေတြကို scan လုပ္ပါ။ ဒါဆိုရင္ ဗိုင္းရပ္ဖိုင္မရွိေတာ့ပါဘူး။

က်န္ေသးတယ္...

ျပန္ေခါက္ထားမယ္...

TreatFire

TreatFire Behavior-Base Threat detection Program. It find malware by analysing Program Behavior unlike traditional antivirus which scan files with signature.
Virus can be missed if there is no signature for that virus. But TreatFire can found if it break it rule. If program break rule, TreatFire will suspend it and prompt to allow or deny.
In last year, there is a program Cyberhawk which is like TreatFire. Cyberhawk is from Symatec and TreatFire is from PC Tools. Both are good antivirus vendors.
TreatFire has two version, namely Free and Pro. Free version is not have on demand scan for know treat, which act like antivirus. Other functions are same.


TreatFire က Behavior-Base Threat detection Program.
သူက antivirus ေတြနဲ႔မတူဘူး။ antivirus ေတြက ဖိုင္ကို signature ေတြနဲ႔တိုက္ၾကည့္ၿပီး စစ္တယ္။
TreatFire က ဖိုင္ရဲ႕အလုပ္လုပ္ပံုကိုေစာင့္ၾကည့္တယ္။ ဥပမာေပးရမယ္ဆိုရင္ antivirus ေတြက ဖမ္းဝရမ္းထုတ္ထားတဲ့သူေတြကို လိုက္ဖမ္းတာျဖစ္ၿပီး၊ TreatFire ကေစာင့္ၾကည့္ေနတဲ့ လံုျခံဳေရး ေတြနဲ႔တူတယ္။
TreatFire က Rule ကိုသံုးၿပီးေစာင့္ၾကည့္တယ္။ ဖုိင္က rule ကိုေက်ာ္သြားရင္ ဖုိင္ကိုရပ္ထားၿပီး ကိုယ့္ကိုအေၾကာင္းၾကားတယ္။ Allow လုပ္မွဆက္ၿပီး run တယ္။
2007 တုန္းက CyberHawk ဆိုၿပီး software တစ္ခုထြက္ခဲ့တယ္။ CyberHawk က Symatec ကထုတ္တာ။ TreatFire က PC Tools ကထုတ္တာ။ သူတို႔ႏွစ္ခုကြာျခားခ်က္က TreatFire မွာ Treat Signature ပါလာတာပါ။ ဖိုင္က rule ကိုေဖာက္ခဲ့ရင္ signature နဲ႔စစ္ၿပီးေတာ့ virus အမ်ိဳးအစားကိုခြဲေပးတယ္။
Behavior Base ျဖစ္လို႔ Antivirus ေတြထက္လည္းပိုေပါ့တယ္။ ေနာက္ၿပီး အလကားလည္းသံုးလို႔ရတယ္။ Pro Version ကေတာ့ ပိုက္ဆံနဲ႔ဝယ္သံုးရမယ္။ Pro Version နဲ႔ Free Version က သိပ္မကြာပါဘူး။
ကၽြန္ေတာ္အခုဆိုရင္ အိမ္မွာ antivirus ေတာင္ပိတ္ထားလိုက္ၿပီ။

က်န္ေသးတယ္...

ျပန္ေခါက္ထားမယ္...

Free online file scan

I would like to introduce you to a site

Virus total is free online file(virus) scanner site. All you have to do is to upload files and wait for result. They will scan your files with 32 virus scanners. And post the result.
The following is my scan and result for one virus in my drive.




As you see only 19 of 32 virus scanner report this files as virus.
If we use 32 virus scanner on our computer to scan file, it will take a lot of time.
So I wish VirusTotal to stand forever.

က်န္ေသးတယ္...

ျပန္ေခါက္ထားမယ္...

Antivirus Software Review

Antivirus Name	Signature	False Positive	Proactive Defense	Respond Time	Rookit Detection	Total Score
Antivir	5	4	4	5	4	4.4
Avast!	5	3	3	4	4	3.8
AVG	5	4	3	3	4	3.8
AVK 2008	5	3	4	5	2	3.8
BitDefender	5	3	5	4	4	4.2
ClamAV	1	2	2	5	1	2.2
Command	1	4	2	3	1	2.2
Dr Web	3	3	4	3	4	3.4
eTrust-VET	1	5	2	1	4	2.6
Fortinet	4	1	5	4	0	2.8
F-Prot	4	4	2	3	3	3.2
F-Secure	4	4	5	4	5	4.4
Ikarus	4	2	4	4	3	3.4
K7 Computing	1	3	2	2	1	1.8
Kaspersky	5	3	4	5	4	4.2
McAfee	4	5	4	2	4	3.8
Microsoft	4	5	2	1	3	3
Nod32	4	4	5	4	4	4.2
Norman	4	4	4	3	3	3.6
Panda	4	3	5	3	5	4
QuickHeal	1	3	3	3	2	2.4
Rising	4	3	3	3	3	3.2
Sophos	4	4	5	4	4	4.2
Symantec	5	5	4	3	5	4.4
Trend Micro	5	4	4	4	5	4.4
VBA32	3	3	4	3	3	3.2
VirusBuster	1	4	2	3	3	2.6
WebWasher	5	3	5	5	0	3.6

The best antivirus is Antivir, F-Secure, Symantec and Trend Micro.
Antivir, Symantec and Trend Micro has good virus signature, basic need
for antivurs program, than F-Secure.
F-Secure programmer consider they do not need strong database as it's
behavioral analysis system is stronger than other.
Behavioral analysis is the only protection aganist Zero-day virus.
Although overall rating of symantec is good, they delay in relasing
their update when new virus comeout.
Second best antivirus is BitDefender, Kaspersky, Nod32 and Sophos.
BitDefender and Kaspersky give more false alarm. But they have good
signature of virus. These four program release their update frequently.
Defination
Virus Signature - Virus signature is heart of antivirus program.
Without this program cannot define what is virus and what is not.
Proactive Defense - Some of AV has this feature. This feature is to
protect aganist 0 (zero) day virus.
False Positive - False positive is one when AV program tell good
program as virus.
Respond Time - Respond time is define as the time interval between
updates.
Rootkit Detection - To detect rootkit, type of virus which give
attacker admin right.

က်န္ေသးတယ္...

ျပန္ေခါက္ထားမယ္...

What Am I?

Am I girl or boy?
I am ...

You Are 70% Boyish and 30% Girlish

You are pretty evenly split down the middle - a total eunuch. Okay, kidding about the eunuch part. But you do get along with both sexes. You reject traditional gender roles. However, you don't actively fight them. You're just you. You don't try to be what people expect you to be.

How Boyish or Girlish Are You?

က်န္ေသးတယ္...

ျပန္ေခါက္ထားမယ္...